The Onapsis Research Lab delivers regular SAP and Oracle vulnerability research to our eco-system of customers, partners and the information security industry

Onapsis security advisories enable customers to better understand the security and business implications of discovered SAP and Oracle security issues. This enables organizations to prioritize patches, updates and their remediation strategies to ensure continuity of the business. Onapsis security advisories, together with vendor patches and security notes, are available for download to provide vendors and end-users with the necessary information to mitigate advanced threats to mission-critical applications running on SAP and Oracle.

SAP
Medium
06/14/2018

By exploiting this vulnerability, a remote unauthenticated attacker may discover security vulnerabilities affecting the system, potentially being able to leverage them in a second step.

Oracle
Critical
06/14/2018

By exploiting this vulnerability, an unauthenticated attacker could render the platform in-operative.

Oracle
Critical
06/14/2018

By exploiting this vulnerability, an unauthenticated attacker could execute arbitrary SQL statements.

SAP
Medium
06/14/2018

By exploiting this vulnerability, a remote unauthenticated attacker could get information about the system architecture.

SAP
Medium
06/14/2018

By exploiting this vulnerability an unauthenticated attacker could access and modify any information indexed by the SAP system.

Oracle
Critical
06/14/2018

By exploiting this vulnerability, an unauthenticated attacker could execute arbitrary SQL statements.

SAP
Medium
06/14/2018

By exploiting this vulnerability an attacker could shut down all SAP systems.

Oracle
Critical
06/14/2018

By exploiting this vulnerability, unauthenticated attacker could execute arbitrary SQL statements.

Oracle
High
06/14/2018

By exploiting this vulnerability, a remote unauthenticated attacker could get sensitive information.

SAP
Medium
06/14/2018

By exploiting this vulnerability an attacker could discover information relating to servers. This information could be used to allow the attacker to specialize their attacks.

Pages